• State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 24 subscribers
  • Views 656 views
  • Users 0 members are here
Options
Related
This discussion has been locked. The information referenced herein may be inaccurate due to age, software updates, or external references.
You can no longer post new replies to this discussion. If you have a similar question you can start a new discussion in this forum.

How to configure the Privileged Account Monitoring Tool "PAM" in SEM?

Midi-21

Hello!

I'm new to the community and I'm learning about SEM, I've seen that Solarwinds offers something called Privileged Account Monitoring Tool  "PAM"

I'm interested in learning how to configure that functionality in the SEM, however I can't find the necessary and complete documentation to help me do it.

Could someone help me find a step-by-step guide or a guide to set it up?

In this link they only talk about what it is, but I am not clear on how to implement it: https://www.solarwinds.com/es/security-event-manager/use-cases/privileged-account-management-tool 

Please!

Parents
  • 0

    There is no built-in PAM tool this is simply a rule you configure to monitor and check for accounts you deem privileged in an Active Directory Group or hardcode the username names to filter.  This is also dependent on having an agent installed on the computer to monitor.

    Logon Failures to Administrative Accounts is a select list of accounts it checks for such as administrator, root, etc.
    This does missing accounts such as members of AD that are domain admins unless you integrate AD and search by ad_group domain_admins. 
    Regarding your question, it does limited monitoring but will require more setup to meet most people's needs.
Reply
  • 0

    There is no built-in PAM tool this is simply a rule you configure to monitor and check for accounts you deem privileged in an Active Directory Group or hardcode the username names to filter.  This is also dependent on having an agent installed on the computer to monitor.

    Logon Failures to Administrative Accounts is a select list of accounts it checks for such as administrator, root, etc.
    This does missing accounts such as members of AD that are domain admins unless you integrate AD and search by ad_group domain_admins. 
    Regarding your question, it does limited monitoring but will require more setup to meet most people's needs.
Children
No Data

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 200,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification SolarWinds Lab Link Customer Portal
About THWACK SolarWinds Blog Federal & Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2021 SolarWinds Worldwide, LLC. All Rights Reserved.